On Mon, Nov 20, 2000 at 01:15:48PM +0000, Mark McLoughlin mentioned:
> On Mon, 20 Nov 2000, John P . Looney wrote:
>> > Have a look at:
> > http://www.lwn.net/2000/1116/kernel.php3> >
> > Does anyone know how serious this bug is ? I couldn't get the exploit to
> > work - I'm thinking it's an older version of modutils or something.
>> A couple of things about this...
>> - Do you not need to be root to use ping -I in the first place, well
> by that I mean you have to have CAP_NET_RAW capability ( and that
> includes raw sockets ) ? See sock_setsockopt in net/core/sock.c
Maybe. However, on a RedHat 7.0 system:
crom [0] ls -l `which ping`
-rwsr-xr-x 1 root root 22108 Oct 10 21:18 /bin/ping
Sigh. There goes my opinion about over paranoid admins unchmodding ping.
Kate
--
The words of the unwary are apt to cause needless pain and bloody violence.
- Zen Master Greg
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
